Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/MdtOz-q-QiBM7yI6s_b1rh2pBa0.roa
File: MdtOz-q-QiBM7yI6s_b1rh2pBa0.roa (raw, json)
Hash identifier: 8/DXNrxtRL09rHMXxFYcS9Boh3FCNkDEWSHxh9nJCPA=
Subject key identifier: 31:DB:4E:CF:EA:BE:42:20:4C:EF:22:3A:B3:F6:F5:AE:1D:A9:05:AD
Certificate issuer: /CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Certificate serial: 055D6F13
Authority key identifier: 8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/MdtOz-q-QiBM7yI6s_b1rh2pBa0.roa
Signing time: Sat 01 Jan 2022 06:54:11 +0000
ROA not before: Sat 01 Jan 2022 06:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29691
IP address blocks: 45.9.160.0/24 maxlen: 24
45.9.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90009363 (0x55d6f13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Validity
Not Before: Jan 1 06:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31db4ecfeabe42204cef223ab3f6f5ae1da905ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:24:39:36:77:19:84:b8:dd:9f:ea:6a:eb:7b:
b6:7b:3a:36:3a:c4:74:21:33:d6:70:4d:f2:5e:2b:
0c:c3:b2:ac:f4:62:2d:77:af:46:ac:d1:a3:da:0a:
bd:fa:4a:af:10:d0:a9:9f:d6:f7:bb:73:cd:15:8c:
7b:28:67:0a:45:af:67:28:27:c9:e9:28:08:1d:59:
c7:eb:63:f9:04:2a:c1:25:86:33:4f:9f:61:17:67:
4d:88:49:aa:13:67:a7:e2:bf:02:66:d6:bf:c7:cd:
68:2c:ca:57:3d:ff:8b:5a:8e:85:b4:a1:51:18:75:
8f:78:10:be:97:ef:2f:f3:d2:48:88:8a:8e:d9:90:
d4:a8:77:6b:97:95:fa:69:b7:8b:47:af:f6:e4:16:
d2:e4:9b:26:53:72:23:75:88:8a:02:7f:8c:f5:96:
c4:60:8f:a6:4f:90:d3:44:ef:58:f2:5e:09:7e:21:
2b:d8:ba:3a:19:b7:07:7b:bb:7e:ca:bd:49:b9:e0:
b0:86:cf:f5:c7:9b:72:65:0e:77:1e:df:eb:fb:27:
89:e8:11:42:57:68:f9:c3:d3:2d:24:ec:89:3d:97:
fd:8b:c9:96:76:97:8c:23:ef:bb:f4:ed:0e:80:42:
0d:ce:0e:4b:cc:c8:4f:93:d4:e9:d2:a2:15:77:14:
6d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DB:4E:CF:EA:BE:42:20:4C:EF:22:3A:B3:F6:F5:AE:1D:A9:05:AD
X509v3 Authority Key Identifier:
keyid:8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/MdtOz-q-QiBM7yI6s_b1rh2pBa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/i9rBinrVAbp-oTVnkJ8X5PcydBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.160.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:c2:46:29:cf:91:b9:83:0b:9f:6b:97:6c:15:c1:55:98:50:
b3:65:11:52:24:22:f7:3d:84:1e:d1:ce:6a:83:39:2f:07:b4:
71:31:9a:1c:d7:07:01:40:b1:fc:38:78:b2:f4:4a:58:78:a8:
24:c0:18:24:3f:fe:48:8c:79:61:5a:46:37:5d:0f:1f:9e:99:
4e:25:40:a8:3e:30:82:d0:7c:c8:65:5b:76:81:19:9a:8a:7e:
84:78:ab:18:48:16:51:c3:78:e0:45:e8:3d:64:27:12:e4:9c:
27:b1:9d:b3:75:0d:a4:2b:e6:c7:4e:40:59:37:8e:04:76:dd:
db:d6:85:ac:d4:da:22:f8:08:b1:53:7b:68:91:45:69:a2:92:
7b:77:f0:ed:5d:9e:2c:6c:cb:13:95:0e:c4:c3:cf:b2:fa:cd:
0c:3f:61:6e:0b:5d:1b:6b:f3:ac:06:0f:82:38:e7:10:e8:45:
a2:11:e3:eb:cd:24:e1:54:20:be:cd:f7:88:75:8c:d3:74:c0:
75:c9:01:c4:32:22:a7:0e:78:d8:e0:7e:eb:24:34:0e:a2:e9:
31:33:5a:b2:29:2a:f1:51:69:27:97:20:42:1a:de:bf:5a:b5:
78:4d:92:58:17:1a:df:c5:c3:46:a4:87:2a:14:d5:c3:6b:37:
7b:c1:48:49
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBV1vEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmRhYzE4YTdhZDUwMWJhN2VhMTM1Njc5MDlmMTdlNGY3MzI3NDEzMB4XDTIyMDEw
MTA2NTQxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzFkYjRlY2ZlYWJl
NDIyMDRjZWYyMjNhYjNmNmY1YWUxZGE5MDVhZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANwkOTZ3GYS43Z/qaut7tns6NjrEdCEz1nBN8l4rDMOyrPRi
LXevRqzRo9oKvfpKrxDQqZ/W97tzzRWMeyhnCkWvZygnyekoCB1Zx+tj+QQqwSWG
M0+fYRdnTYhJqhNnp+K/AmbWv8fNaCzKVz3/i1qOhbShURh1j3gQvpfvL/PSSIiK
jtmQ1Kh3a5eV+mm3i0ev9uQW0uSbJlNyI3WIigJ/jPWWxGCPpk+Q00TvWPJeCX4h
K9i6Ohm3B3u7fsq9SbngsIbP9cebcmUOdx7f6/sniegRQldo+cPTLSTsiT2X/YvJ
lnaXjCPvu/TtDoBCDc4OS8zIT5PU6dKiFXcUbW0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQx207P6r5CIEzvIjqz9vWuHakFrTAfBgNVHSMEGDAWgBSL2sGKetUBun6h
NWeQnxfk9zJ0EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k5ckJpbnJWQWJwLW9UVm5rSjhYNVBjeWRCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmUvMzc0ZmQxLTAyYzItNDY3MS1iZGM5LWMzY2M1ZGUxZWNlOS8x
L01kdE96LXEtUWlCTTd5STZzX2IxcmgycEJhMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmUv
Mzc0ZmQxLTAyYzItNDY3MS1iZGM5LWMzY2M1ZGUxZWNlOS8xL2k5ckJpbnJWQWJw
LW9UVm5rSjhYNVBjeWRCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS0JoDANBgkqhkiG9w0BAQsFAAOC
AQEAx8JGKc+RuYMLn2uXbBXBVZhQs2URUiQi9z2EHtHOaoM5Lwe0cTGaHNcHAUCx
/Dh4svRKWHioJMAYJD/+SIx5YVpGN10PH56ZTiVAqD4wgtB8yGVbdoEZmop+hHir
GEgWUcN44EXoPWQnEuScJ7Gds3UNpCvmx05AWTeOBHbd29aFrNTaIvgIsVN7aJFF
aaKSe3fw7V2eLGzLE5UOxMPPsvrNDD9hbgtdG2vzrAYPgjjnEOhFohHj680k4VQg
vs33iHWM03TAdckBxDIipw542OB+6yQ0DqLpMTNasikq8VFpJ5cgQhrev1q1eE2S
WBca38XDRqSHKhTVw2s3e8FISQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:18 2023 by rpki-client on console-ams.rpki-client.org